Skills
skills/gabelul/stitch-kit/stitch-react-native-components/Gen Agent Trust Hub

stitch-react-native-components

Pass

Audited by Gen Agent Trust Hub on Mar 21, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection through its processing of external HTML content.
  • Ingestion points: Content is downloaded from a tool-provided URL into temp/source.html as described in Step 1 of SKILL.md.
  • Boundary markers: Absent. The skill lacks instructions to delimit the external content or to warn the agent to ignore potential instructions embedded within the source HTML.
  • Capability inventory: The skill allows the agent to use Bash, Read, and Write tools, which could be misused if malicious instructions are processed from the source file.
  • Sanitization: Absent. No input validation or filtering is performed on the downloaded HTML content before it is processed for component generation.
  • [EXTERNAL_DOWNLOADS]: The skill performs external network requests using a shell script to fetch design files.
  • Evidence: bash scripts/fetch-stitch.sh "[htmlCode.downloadUrl]" "temp/source.html" in SKILL.md invokes curl to fetch remote data.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 21, 2026, 02:42 AM